MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Principal Security Engineer – Identity & Access

Dlocal

Madrid Hybrid permanent

Posted: May 14, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

We are looking for a Principal Security Engineer to join our team in Madrid, Spain.

Required Skills

Identity Management Access Control Automation Zero Trust Federation RBAC Cloud Security Security Engineering

Job Description

Why should you join dLocal?

dLocal enables the biggest companies in the world to collect payments in 40 countries in emerging markets. Global brands rely on us to increase conversion rates and simplify payment expansion effortlessly. As both a payments processor and a merchant of record where we operate, we make it possible for our merchants to make inroads into the world’s fastest-growing, emerging markets.

By joining us you will be a part of an amazing global team that makes it all happen. Being a part of dLocal means working with 1000+ teammates from 30+ different nationalities and developing an international career that impacts millions of people’s daily lives. We are builders, we never run from a challenge, we are customer-centric, and if this sounds like you, we know you will thrive in our team.


About Us & The Role :
We are not building a traditional, bureaucratic identity and access management function. We are building a modern, highly automated identity security program—and we need a sharp, relentless operator to build it.

Identity is the new perimeter, and managing how our global workforce accesses enterprise systems is one of our highest priorities. We are looking for a Principal Security Engineer – Identity & Access to help drive our identity evolution alongside our existing senior engineering team. You will be walking into a rapidly evolving ecosystem that has outgrown its early identity frameworks. Your mandate is to take that complex web of legacy entitlements and build a highly scalable, automated identity governance machine.

This is not an "ivory tower" strategy role. We do not need someone to draw Visio diagrams and hand them off to junior admins. We need a pragmatic, high-agency builder who helps design the strategy but has the zero-ego grit to execute it with their own hands.


What You'll Do:

Engineer the Identity Lifecycle (JML & SoD): Take on our workforce identity and access ecosystem. You will engineer a highly automated Joiner-Mover-Leaver (JML) machine, implementing robust access certifications, Separation of Duties (SoD), and unified IGA frameworks that scale with our hyper-growth.


Federation, Zero Trust & Integration: Design and scale our authentication and authorization foundations across cloud, SaaS, and on-premise environments. You will lead identity federation leveraging SAML, OAuth2, OpenID Connect, and SCIM, while driving the adoption of Zero Trust architecture and Adaptive MFA across the enterprise.


M&A & Enterprise Transformation: As a rapidly expanding global fintech, we acquire and scale. You will lead the identity integration strategy for mergers, acquisitions, and massive enterprise transformation initiatives, securely and seamlessly folding new organizations into our identity ecosystem.


Zero-Ego Execution: As a senior technical anchor on the team, you lead by example. You will get your hands dirty. You will configure the integrations, write the RBAC policies, engineer the IGA platforms, and untangle access flows yourself.


Codify Governance & Shift Left: You will design self-service identity workflows, automated controls, and identity KPIs that force business leaders (the first line of defense) to explicitly own and accept their access risks. You translate written compliance policies into code.


Be the IAM Diplomat: When you change how developers and commercial teams authenticate, there is always friction. You will be a key face of our identity transformation. You must have the extreme patience, persistence, and EQ to negotiate with engineering directors, bringing them along and enforcing security without alienating them.


What You Bring:

Resilient Problem Solver: You don't get stuck. Where others see a messy legacy setup, you see an exciting puzzle. You don't get paralyzed or frustrated by organizational friction; you thrive on using the latest technologies and original thinking to solve long-standing identity problems.


Track Record Over Tenure: We do not care about arbitrary "years of experience." We care about outcomes. You must have a proven track record of designing, building, or scaling Identity and Access programs in fast-paced, complex environments.


Deep IGA & Protocol Expertise: You possess solid, hands-on experience with modern workforce identity systems, lifecycle processes (JML, SoD, Certifications), protocols (SAML, OIDC, OAuth2, SCIM), RBAC/ABAC models, and enterprise identity platforms (e.g., SailPoint, Saviynt, Okta).


Pragmatic Operator Mindset: You understand that security cannot kill velocity. You know how to find the critical balance between enforcing strict, least-privilege security and maintaining high usability for the business.


Disciplined Multi-Threading: You are ruthlessly organized, capable of driving an enterprise identity strategy while simultaneously troubleshooting an immediate, ground-level access escalation.


Force Multiplier: You elevate the engineers around you. You bring strong mentoring, leadership, and documentation capabilities, ensuring that the systems you design are highly scalable, well-understood, and easily maintained by the wider organization.


Nice to Have:

Experience navigating the identity and access requirements of highly regulated environments (PCI-DSS, SOX, SOC 2).


Familiarity with machine identity governance, secrets management, and API access.


Relevant industry certifications demonstrating your dedication to the identity domain.


Your Cross-Functional Surface Area :
You will not work in a silo. You will partner deeply with Enterprise IT Service Desk, Application owners, Cloud Platform, and Infrastructure teams to govern access across Enterprise and Cloud. You will align with Detection & Response teams to improve identity threat visibility and automated containment, and you will collaborate heavily with HR and Enterprise Applications to ensure identity data flows securely from the ultimate source of truth.


What do we offer?

Besides the tailored benefits we have for each country, dLocal will help you thrive and go that extra mile by offering you:

- Flexibility: we have flexible schedules and we are driven by performance.

- Fintech industry: work in a dynamic and ever-evolving environment, with plenty to build and boost your creativity.

- Referral bonus program: our internal talents are the best recruiters - refer someone ideal for a role and get rewarded.

- Social budget: you'll get a monthly budget to chill out with your team (in person or remotely) and deepen your connections!

- dLocal Houses: want to rent a house to spend one week anywhere in the world coworking with your team? We’ve got your back!

Flexibility in how you work: We focus on impact and productivity over fixed hours. This means our teams have flexible schedules and, depending on your role and location, you will combine self‑managed focus time with moments of in‑person connection in our collaboration hubs.

What happens after you apply?

Our Talent Acquisition team is invested in creating the best candidate experience possible, so don’t worry, you will definitely hear from us. We will review your CV and keep you posted by email at every step of the process!

Also, you can check out our webpage, Linkedin and Youtube for more about dLocal!

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply